Threat intelligence firm GreyNoise has reported a staggering 500% increase in scanning activity targeting Palo Alto Networks login portals on October 3, 2025, with approximately 1,300 unique IP addresses involved, predominantly from the U.S. This surge is reminiscent of a similar spike in scanning activity related to Cisco Adaptive Security Appliances, raising concerns about potential exploits and recent vulnerabilities. The overlap in the fingerprinting of the scanning tools suggests a coordinated effort, reinforcing the need …

The recent expiration of the Cybersecurity Information Sharing Act of 2015 (CISA 2015) amidst a U.S. government shutdown has raised significant concerns within the private sector regarding cyber threat coordination. This critical legislation, which facilitates information sharing between private entities and government, has been instrumental in enhancing cybersecurity protections. The inability of lawmakers to reach a consensus on renewing or modifying the Act places the U.S. in a more vulnerable cyber environment, as emphasized by …

Indian researchers at the Raman Research Institute in Bengaluru, in collaboration with the Indian Institute of Science and the University of Calgary, have made a significant breakthrough in quantum security by developing a simplified method to generate truly random numbers using quantum computers. This approach uses a single qubit measured over time, eliminating the need for complex optical setups. Demonstrated on cloud-based quantum platforms like IBM’s superconducting-qubit system, the technique certifies randomness based on Leggett-Garg …

A coordinated cyberattack exploiting the known Grafana vulnerability CVE-2021-43798 has resurfaced, with an alarming spike in exploitation attempts observed on September 28, 2025. Attackers primarily from Bangladesh, China, and Germany targeted systems internationally, including several critical infrastructure points, leveraging unpatched Grafana instances to execute directory traversal attacks and file disclosures. Despite patches being available since December 2021, many Grafana deployments remain vulnerable, exposing sensitive operational data and internal configurations. In India, Grafana is increasingly used …

Discord has confirmed a data breach involving a third-party customer service provider that compromised identifiable user information from a limited number of users who had interacted with its support teams. The breach, which occurred on September 20, resulted in the unauthorized access of usernames, email addresses, last four digits of credit card numbers, and a small number of government-issued ID photos, although full credit card numbers and passwords remain secure. Hackers, motivated by financial gain, …

Cybercriminals linked to recent ransomware attacks on British retailers have claimed to have stolen nearly one billion records from Salesforce, targeting companies that utilize its cloud services. The hack was reportedly executed using voice phishing (vishing) tactics aimed at Salesforce clients, rather than hacking Salesforce directly. The group, called Scattered LAPSUS$ Hunters, has claimed responsibility for breaching around 40 organizations, including major retailers like Marks & Spencer and Jaguar Land Rover, and has launched a …

Tenable has identified critical vulnerabilities, collectively termed the Gemini Trifecta, in Google’s Gemini suite, potentially allowing hackers to steal sensitive user data unnoticed. These flaws, now remediated, enabled attackers to manipulate logs, search histories, and use the browsing tool to exfiltrate information like location data. The vulnerabilities underscore the necessity for organizations to treat AI-driven features as active attack surfaces, emphasizing the need for robust security measures in AI environments. The incident highlights the evolving …

A new phishing toolkit named Impact Solutions has emerged on underground cybercrime forums, enabling lower-skilled hackers to conduct sophisticated attacks with ease. The toolkit, which surfaced around October 1, 2025, is designed as an all-in-one platform that allows cybercriminals to craft convincing malicious files using social engineering tactics, such as weaponized shortcuts, HTML pages, and SVG images, to bypass traditional security filters. It boasts evasion techniques like UAC bypass and anti-virtual machine checks, making it …